Privacy Policy

1. Who I Am

This website is operated by Yashasvi Girdhar, a certified fitness and nutrition coach.

• Data Controller: Yashasvi Girdhar
• Contact: coachingwithyg@gmail.com
• Website: to10percentbodyfat.com

2. What Personal Data I Collect

What "Contract performance" means: This data is necessary for me to provide the coaching services you've signed up for. You can still request deletion at any time, but this may affect my ability to continue coaching you safely and effectively.

3. How I Use Your Data

• Discovery Calls: To contact you about your fitness goals and coaching needs
• Coaching Services: To create personalized programs, track your progress, and provide ongoing support
• Website Analytics: To understand how visitors use my site and improve the experience
• Marketing: Only with your explicit consent, to send coaching tips and program updates

4. Who Has Access to Your Data

Technical Service Providers:

To provide coaching services, some of your data is processed by the following trusted service providers. These services only have access to the minimum data necessary to function:

• Google Calendar: For booking discovery calls (name, email, phone number only)
• WhatsApp (Meta): For client communication and support (messages are end-to-end encrypted)
• Payment Processors: For processing subscription payments (payment details only - secure, PCI-compliant)
• Analytics & Marketing Tools: Such as Google Analytics or similar services for website statistics (anonymized browsing data, with your consent)
• Netlify: Website hosting (technical data only)

Important: None of these service providers have access to your complete coaching data (health information, progress photos, or detailed personal information). All third parties are contractually required to protect your data and use it only for the specified technical purposes.

5. How Long I Keep Your Data

You can request deletion of your data at any time. I will delete all personal data upon request, except where I have a legal obligation to retain it.

• Discovery call prospects: 24 months if no coaching agreement, or deleted upon request
• Progress photos/videos: Deleted immediately upon request, or automatically after 7 years
• WhatsApp messages: Deleted upon request, or retained for duration of coaching plus 12 months
• Health and fitness data: Deleted upon request, or retained for 7 years for professional liability protection
• Financial records: Retained for 6 years after transaction (UK tax law requirement - HMRC). Personal identifiers can be anonymized upon request while keeping transaction records
• Website analytics: 26 months (default retention period), anonymized data

6. Your Rights

Under UK GDPR, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Ask me to correct inaccurate data
• Erasure: Request deletion of your data
• Object: Opt out of marketing communications
• Portability: Receive your data in a portable format

To exercise these rights, contact me at coachingwithyg@gmail.com. I'll respond within 30 days.

7. Cookies

I use cookies to improve your browsing experience. My cookie consent banner lets you choose which types to accept:

• Essential: Required for basic site functionality (always enabled)
• Analytics: Help me understand site usage (optional, via analytics tools)
• Marketing: For remarketing and social media features (optional, via marketing tools)

8. Security

I protect your data with industry-standard security measures including HTTPS encryption, secure cloud storage, and limited access controls.

9. Changes to This Policy

I may update this privacy policy from time to time. I'll notify you of significant changes by email or prominent website notice.

10. Contact & Complaints

For privacy questions or to make a complaint:

• Email: coachingwithyg@gmail.com
• Response time: Within 30 days

You also have the right to complain to the Information Commissioner's Office (ICO):

• Website: ico.org.uk
• Phone: 0303 123 1113